Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/DPxgVxKdypoWDypZIndlqeZ0lLs.cer
File: DPxgVxKdypoWDypZIndlqeZ0lLs.cer (raw, json)
Hash identifier: hfFMly52nQ9ph93cB6N41dfNHgPvg3beCswFhMMyiHE=
Subject key identifier: 0C:FC:60:57:12:9D:CA:9A:16:0F:2A:59:22:77:65:A9:E6:74:94:BB
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: C8E4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 21 Mar 2025 02:58:07 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 151280
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51428 (0xc8e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Mar 21 02:58:07 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=0CFC6057129DCA9A160F2A59227765A9E67494BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:90:f6:1e:cb:64:da:1a:c0:16:d8:16:8b:ab:
81:5c:59:9e:5d:8a:69:75:59:18:6d:33:e0:26:90:
6e:9a:58:80:0f:7f:9d:c8:00:2d:c2:bb:e3:8a:4b:
5b:e2:97:c7:2e:cb:4c:f7:4c:83:1a:72:e5:6a:98:
9e:5f:75:57:a9:40:c3:c4:b3:fa:5a:ba:3a:41:5a:
23:1c:fb:c5:5d:fc:42:3f:1b:5b:74:a0:c1:55:d3:
23:b8:b3:82:d9:eb:f3:5d:49:41:f7:42:32:56:06:
3a:3f:67:8b:55:8b:c0:92:08:0e:e3:f1:fd:50:92:
7d:d7:ee:f2:25:4c:f8:7a:6b:0e:c5:05:85:88:fc:
67:be:eb:cf:62:13:c8:5e:5e:cb:7a:1f:61:06:47:
6f:09:90:66:ba:15:66:bf:68:7d:a4:b2:0b:a8:4f:
c4:3f:e6:dd:05:bd:f0:3e:31:ea:f2:7f:81:41:df:
36:7d:ea:f4:49:87:23:cf:b4:ff:a2:3e:17:94:b0:
b9:92:8d:1c:b6:41:c4:55:f3:83:03:fb:37:c3:bf:
82:7b:b5:71:dd:19:df:1f:a9:cb:ae:0f:49:f8:87:
08:d9:22:16:57:b4:77:22:c8:34:d9:0f:64:e6:ed:
ea:b1:d2:41:ad:c8:a8:c6:d9:9a:7a:37:42:bc:df:
6d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:FC:60:57:12:9D:CA:9A:16:0F:2A:59:22:77:65:A9:E6:74:94:BB
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151280
Signature Algorithm: sha256WithRSAEncryption
6d:79:97:56:a5:e7:2f:a9:d1:7c:91:05:1c:68:b4:47:00:84:
b0:aa:b2:38:4d:36:dd:5d:01:3f:11:74:49:fe:3a:b6:3e:d5:
bc:dd:e9:a7:49:4a:5d:cd:01:10:53:fd:b5:d7:21:03:97:ac:
87:e4:ab:55:25:76:f4:4b:55:80:43:82:36:74:31:b0:18:81:
a0:9b:77:97:b1:7b:6b:3c:b2:09:03:47:a8:d4:a0:15:b4:14:
d0:39:a4:4b:b0:45:46:e1:d7:f6:50:5f:02:18:02:3c:21:d9:
58:27:eb:b2:d2:20:dc:6b:e0:a4:86:e2:ca:e5:24:b5:8b:a3:
a4:46:d5:fd:b5:03:b5:ae:d4:66:e1:a1:e1:de:9b:f9:0e:64:
f6:54:c2:63:a4:20:7b:69:ec:63:9d:2d:69:b5:39:8b:05:3f:
ba:ef:b4:e1:19:64:29:56:55:4d:24:0d:47:5d:fe:14:b6:40:
30:e1:f0:6d:2d:9e:21:cf:b1:ed:5d:0f:c2:17:ca:7f:6c:87:
86:bb:44:e6:28:75:08:92:3d:e5:1b:cf:0c:74:0c:42:81:92:
36:8d:68:d3:88:5d:2d:36:6b:3f:85:00:14:de:7d:cd:06:e7:
a1:e8:61:94:20:1a:b3:c0:81:aa:d4:64:49:27:0c:be:be:f5:
13:13:f8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:20:59 2025 by rpki-client